a2ba5e08969c979d2fe04c7035b8b2997aca0c9b8b6e34a01eaf2bd63a8bc708 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a2ba5e08969c979d2fe04c7035b8b2997aca0c9b8b6e34a01eaf2bd63a8bc708
Size

315KB
Sample

221028-17l88aaahj
MD5

0b502754586ce30d60a6d01dcab083b0
SHA1

a7b12e1a06741fed131dc4557bc2cc0c210787dd
SHA256

a2ba5e08969c979d2fe04c7035b8b2997aca0c9b8b6e34a01eaf2bd63a8bc708
SHA512

64a5adf056e77cd97fde15d94aa97746d147b196526e977bac8881594e0b6cb7389367ea2edd045c736e28f52dd4389c016c6a1750b52508b5572f01cd08938f
SSDEEP

6144:ZrpbUzkuvcBYC47l2xyfalkLUsx4Y0k8ojcX/pJ2enmrIJzO1LBut0njxxuQ9Uc:ZrakuveY3hfaaLUsx4JkxjYJ2emrCz2r

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a2ba5e08969c979d2fe04c7035b8b2997aca0c9b8b6e34a01eaf2bd63a8bc708
- Size
  
  315KB
- MD5
  
  0b502754586ce30d60a6d01dcab083b0
- SHA1
  
  a7b12e1a06741fed131dc4557bc2cc0c210787dd
- SHA256
  
  a2ba5e08969c979d2fe04c7035b8b2997aca0c9b8b6e34a01eaf2bd63a8bc708
- SHA512
  
  64a5adf056e77cd97fde15d94aa97746d147b196526e977bac8881594e0b6cb7389367ea2edd045c736e28f52dd4389c016c6a1750b52508b5572f01cd08938f
- SSDEEP
  
  6144:ZrpbUzkuvcBYC47l2xyfalkLUsx4Y0k8ojcX/pJ2enmrIJzO1LBut0njxxuQ9Uc:ZrakuveY3hfaaLUsx4JkxjYJ2emrCz2r
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2